- Design and implement Security policies according to the ISO 27001 guidelines
- Conduct regular security assessments, vulnerability scans, and penetration tests to identify and address potential weaknesses and threats according to the annual schedule plan.
- Monitor network traffic and system logs for potential security incidents and respond promptly to mitigate risks and minimize potential impact.
- Advanced knowledge with the Kaspersky environment and EDR Solutions
- DLP Understanding
- Firewall logs monitor and analysis
- Collaborate with cross-functional teams to integrate security measures into the development lifecycle of applications, systems, and infrastructure.
- Participate in incident detection and response efforts, including investigation, containment, and recovery.
- Stay updated with the latest security threats, vulnerabilities, and industry trends to proactively identify emerging risks and implement necessary controls.
- Participate in security awareness training programs for employees to educate them on security best practices and promote a security-conscious culture.
- Implement IT Security Controls & Requirements
- Prepare monthly/quarterly reports and dashboards showing the security analytical data
- Setting and testing the policies implemented on all Company Laptops/Desktops required to protect Company data from been stolen or been lost/corrupted.
- Review and test the network security policies/configurations to protect the Company networks from unauthorized access, cyber/virus attacks
- Review all vulnerability reports and take the corrective action needed
- Working according the ISO 27001 framework controls
Academic and professional qualifications: Bachelor in computer science, computer engineering, or equivalent. Experience:10 to 12 years of experience in the same field Technical Specifications:ISO 27001 CertifiedCISA Certified is preferred